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AMENDMENTS TO THE CLAIMS 

The following listing of claims lists all of the pending claims, and supersedes all prior 
listings, and versions, of claims in this application. 

LISTING OF CLAIMS : 

1. (Currently amended) An access syste m for a computer site , comprising: 

a certificate authentication component to verify a user's identity from a digital certificate 

supplied by the user, 

a directory, coupled to the certificate authentication component, to maintain an account for 
each individual user, each account containing an access policy specifying at least one portion of 
athe computer site to which the corresponding user is permitted access, the computer site being 
divided into isolated subnets, each at least one portion included in one of the subnets, each account 
further containing at least one of an internet protocol (IP) address and a certificate authorization 
method associated with the user, and 

an access control system, in computer hardware coupled to the directory, for controlling 
access to the computer site by permitting the user to access one or more of the subnets including one 
of said each at least onea portion of the computer site and restricting the user from accessing at least 
one other portion of the computer site, based on the access policy associated with the individual user 
in thea directory, wherein the access policy is used to provide tiered access for different sets of users 
to a plurality of security levels. 

2-17. (Canceled) 

18. (Previously Presented) The access system of claim 1, further comprising a digital 
signing module that produces and stores at least one of a digital signature and a timestamp for a 
transaction. 
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19. (Previously Presented) The access system of claim 1, wherein users are categorized into 
discrete sets, and each set is granted access to a particular portion of the computer site according to 
the access policy. 

20. (Previously Presented) The access system of claim 1, the system configured to use 
information relating to the user to present to the user personalized information. 

21 . (Previously Presented) The access system of claim 20, wherein the information relating 
to the user is at least one of the user's navigation history and the user's preferences. 

22. (Previously Presented) The access system of claim 20, wherein the personahzed 
information is at least one of information relating to new products and developments in the user's 
field of interest. 

23. (Previously Presented) The access system of claim 1, the system configured to maintain 
an archive relating to the account, the archive including information relating to at least one of 
purchases made, available credit, applicable discounts, and links to specific recorded transactions. 

24. (Canceled) 

25. (Previously presented) The access system of claim 1, the system being configured for 
supporting desired functionality of designated users. 

26. (Previously Presented) The access system of claim 1, further comprising an automation 
component to permit automation of certificate authorization. 

27. (Currently amended) A method, comprising: 

receiving a request, in computer server hardware, from a user to access a computer site or a 
portion thereof, the request including information representative of the user's identity; 
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verifying the user's identity from the information by consulting a directory that includes 
accounts for individual users, each account containing an access policy specifying at least one 
portion of the computer site to which the corresponding user is permitted access, the computer site 
being divided into isolated subnets, each at least one portion included in one of the subnets, each 
account further containing at least one of an internet protocol (IP) address and a certificate 
authorization method associated with the user; 

controlling access to the computer site by permitting the user to access one or more of the 
subnets including a portion of the computer site and restricting the user from accessing at least one 
other portion of the computer site, based on the access policy for the user, wherein the access policy 
is used to provide tiered access for different sets of users to a plurality of security levels. 

controlling access to the computer site by permitting the user to access a portion of the 
computer site and restricting the user from accessing at least one other portion of the computer site, 
based on the access policy associated with the user. 

28. (Previously Presented) The method of claim 27, further comprising producing and 
storing at least one of a digital signature and a timestamp for a transaction. 

29. (Previously Presented) The method of claim 27, further comprising categorizing users 
into discrete sets, and granting each set access to a particular portion of the computer site according 
to the access policy. 

30. (Previously Presented) The method of claim 27, further comprising using information 
relating to the user to present to the user personalized information. 

3 1 . (Previously Presented) The method of claim 30, wherein the information relating to the 
user is at least one of the user's navigation history and the user's preferences. 
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32. (Previously Presented) The method of claim 30, wherein the personalized information 
is at least one of information relating to new products and developments in the user's field of 
interest. 

33. (Previously Presented) The method of claim 27, further comprising maintaining an 
archive relating to the account, the archive including information relating to at least one of 
purchases made, available credit, applicable discounts, and links to specific recorded transactions. 

34. (Canceled) 

35. (Previously Presented) The method of claim 27, further comprising supporting desired 
functionality of designated users. 

36. (Previously Presented) The method of claim 27, further comprising 
automating certificate authorization. 

37. (Currently amended) An access system for a computer site, comprising: 

a certificate authentication component to verify a user's identity from a digital certificate 
supplied by the user, 

a directory, coupled to the certificate authentication component, to maintain an account for 
each individual user, each account containing an access policy specifying at least one portion of 
athe computer site to which the corresponding user is permitted access, the computer site being 
divided into isolated subnets, each at least one portion included in one of the subnets, each account 
further containing at least one of an internet protocol (IP) address and a certificate authorization 
method associated with the user, and 

an access control system, in computer hardware coupled to the directory, for controlling 
access to the computer site by permitting the user to access one or more of the subnets including one 
of said each at least onea portion of the computer site and restricting the user from accessing at least 
one other portion of the computer site, based on the access policy associated with the individual user 
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in thea directory, wherein the access policy is used to provide tiered access for different sets of users 
to a plurality of security levels; 

and further wherein the access control system is configured to use information relating to the 
user to present to the user personalized information, the information relating to the user being at 
least one of the user's navigation history and the user's preferences, and the personalized 
information being at least one of information relating to new products and developments in the 
user's field of interest. 
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